Description:Improper sanitization allows the attacker to override the settings for allowed file extensions and upload file size. This allowsthe attacker to upload anything they want, bypassing the filters.